To request a free safety data check, scroll to the bottom of this page.
Real backup, real security, real recovery — set up and supported by one person who lives where you do. Serving Elizabethtown, Radcliff, and surrounding central Kentucky.
SERVICES
PROTECT · PREVENT · PREPARE
Cybersecurity for small businesses across central Kentucky.
Page intro
One person. Local. Direct line.
I serve small businesses across central Kentucky — the kind of operations that big enterprise security firms don't bother calling back. Same security standards big corporations get, sized and priced for businesses that have been ignored by the security industry.
Two tiers, depending on how your business runs. Pick the one that fits, or let me help you decide during a free Data Safety Check.
Which tier fits your business?
You probably want Tier 1 if...
Your business runs primarily from a phone or tablet
You're a service business that goes to clients (lawn care, cleaning, mobile contractors, in-home services)
You're a childcare provider, personal trainer, or other one-person operation
Your "office" is a vehicle, a notebook, and a cloud account
You don't have a Windows PC at the heart of your daily operations
You probably want Tier 2 if...
A Windows PC is the heart of your business operations
You're a church, dental office, funeral home, law firm, accounting practice, self-storage office, or similar
You handle records that have to be retained for years
You handle data that's regulated (HIPAA, PCI, IRS retention rules)
A few days of computer downtime would seriously hurt your business
Not sure? That's exactly what the free Data Safety Check is for. We'll figure it out together.
Tier 1 — For mobile and service businesses
Built for the phone-and-tablet business.
Most small service businesses don't have a server room or a fancy IT setup. You have a phone, maybe a laptop, a few cloud accounts, and a calendar full of clients. The security risks are still real — your accounts get hijacked, your client lists get stolen, your reputation takes the hit. But your protection needs to be sized for how you actually work.
That's Tier 1.
Pricing
$150 — one-time Digital Security Audit and setup$50/month — ongoing security service
What's included in setup ($150)
Full Digital Security Audit covering your phone, your accounts, your cloud, and any computers you use
Two-factor authentication configured on every major account: email, banking, social media, business apps
Password manager setup (Bitwarden) — your passwords moved out of sticky notes, browsers, and Word docs
Cloud account audit — review of which apps have access to what, with anything sketchy revoked
Phone security review — lock screens, biometrics, find-my-device, photo backup
Computer or laptop backup configured if applicable, using built-in Windows tools to a chosen secondary location
Written one-page security checklist you keep — useful for audits, insurance, and your own records
What's included in the monthly service ($50/month)
One proactive check-in per month by text or email — a quick status update, no in-person visit required
Direct line to me for security questions: suspicious emails, weird login alerts, unfamiliar charges, lost devices
Breach monitoring on your key accounts — notification if your email or password appears in a known data breach
Periodic refresh of security settings as platforms and threats change
Backup health monitoring (if backup is part of your setup)
Tier 2 — For office and computer-based businesses
Built for the business that lives on a computer.
If a Windows PC is the heart of your operations — practice management software, donor records, member databases, client files, scheduling systems — your security needs are different. You need real backup. You need ransomware preparation. You need someone who knows what to do when the screen goes red and a ransom note appears.
That's Tier 2.
Pricing
$350 — one-time setup$250/month — ongoing service
What's included in setup ($350)
Everything from Tier 1, plus:
VaultGuard Backup installed and configured (my custom-built Windows backup software, included as part of your service tier)
Three-layer backup architecture:
Local copy on an encrypted external drive
Cloud copy synced through your business's cloud account
Off-site copy managed personally by me, separate from anything you control
SHA-256 integrity verification on every backup — corruption is detected, not assumed away
ACL-locked vault directories — even local administrators can't accidentally damage backup files
Pre-backup malware scanning so ransomware can't sneak into the backup itself
BitLocker encryption verification on backup drives
Documented and verified restore-test procedure
What's included in the monthly service ($250/month)
Active monitoring of all three backup layers
Monthly written health report on backup status, integrity verification, and any issues caught
Flat-rate emergency recovery if ransomware or hardware failure strikes — first 4 hours covered for active clients at $500 flat
Direct line to me, always — no call center, no ticket queue
Quarterly review of security posture and recommended updates
Everything from Tier 1's monthly service is included
Outside the tiers
A few situations aren't covered by the flat tier pricing — emergencies and ad-hoc work. The pricing is straightforward, with active clients getting a 50% discount regardless of tier.
Emergency incident response (ransomware, breach, urgent recovery)
First 4 hoursAfter 4 hours:
Active client (Tier 1 or Tier 2) - $250 flat (50% off) and then $75 per hour
Non-client - $500 flat and then $75 per hour
Active clients also get priority response — your call jumps the queue ahead of non-client emergencies. An emergency is the same work regardless of which tier you're on, so the discount is the same regardless of tier.
General hourly work
For one-off tasks that don't fit cleanly into a tier — a one-time security audit before an insurance review, helping you respond to a specific suspicious email, walking a board through a security risk:
Hourly rate
Active client (Tier 1 or Tier 2) - $75 per hour (25% off)
Non-client - $100 per hour
What I do, and what I don't
A core principle of how I work: I do information security, not information technology. Drawing this line is what lets me deliver real expertise on the things I do, instead of being mediocre at everything.
What I do:
Backups and data recovery
Account and password security
2FA and authentication setup
Ransomware prevention
Cloud account hardening
Phone and device security
Breach monitoring
Incident response
Security audits
What I don't do:
Printer or scanner setup
WiFi or networking issues
New computer setup
Software installation help
"My email won't open"
Hardware repair
Slow computer fixes
General IT support
Phone hardware repair
When you call me with an IT issue rather than a security one, I'll point you to a trustworthy local provider rather than taking the work and doing it badly. The security work needs my full attention, and I'd rather lose that hour of billable time than give you anything less than my best.
Who I work with
I work with small businesses across central Kentucky, in any industry. The list of who I've worked with isn't a list of who I'll work with — if your business isn't on it, that just means I haven't met you yet.
Read more about who I work with →
How clients get started
Free 30-minute Data Safety Check. In person, by phone, or video. Honest assessment of what's currently protected and what isn't. No pressure, no upsell.
Tier recommendation. I recommend Tier 1 or Tier 2 based on how your business actually operates. You can start at Tier 1 and upgrade later if your needs change.
Setup day. One focused session — usually 2 to 4 hours depending on tier and complexity. You walk away with everything secured, a written checklist in hand, and a direct line for ongoing questions.
Ongoing relationship. Monthly check-ins, direct line whenever you need it.
How I work
A few things worth knowing before we start.
Written agreement. Every engagement runs under a Master Service Agreement that spells out what I'll do, what it costs, and what you can expect. You see it and sign it before I do any work.
30-day termination. Either side can end the agreement with 30 days written notice. You're never locked into a long contract. If we're not a fit, you walk.
Liability cap. My total liability is capped at the fees you paid me in the preceding 12 months. Standard for the industry, and stated upfront so there are no surprises.
Certificate of Destruction. Within 30 days of any drive or media leaving your possession — whether you're upgrading hardware or ending our agreement — I provide a written Certificate of Destruction documenting that retired media has been securely wiped or physically destroyed.
One person, accountable. When you call, I answer. When you email, I respond. When something goes wrong at 4:55 PM on a Friday, you call the same number you've been calling all year, and I pick up.
Invoicing. Setup fees and monthly retainers are billed through Stripe with payment due within fifteen days. No surprise charges — quotes match invoices.
Free Data Safety Check
Not sure where you stand? Let's find out together.
A 30-minute conversation, no charge. We'll talk about your current setup, identify the gaps that worry me most, and give you an honest assessment of what you'd actually need — even if that turns out to be "you're in better shape than you thought, you don't need me."
No pressure. No quote pitched at you afterward unless you ask for one. Just a conversation between two people about whether your data is protected.
Request your free Data Safety Check
Final pitch
Protect. Prevent. Prepare.
Three words. They're on my logo because they're the work. Protect what you have. Prevent what you can. Prepare for what you can't prevent.
Whether you're a one-person mobile business or a small office with a server in the back room, those three words mean the same thing — and they're worth doing right.
If that's the kind of cybersecurity you're looking for, get in touch.